Iranian hackers ‘tickle’ targets in US, UAE with custom tool, Microsoft says
Peach Sandstorm is said to have focused on the oil and gas, satellite, government and communications sectors.
Advertisement
Showing 10 of 18 results
-
Niger River, Segou, Segou, Mali; Sascha Grabow, Getty Images Geopolitics -
Iranian flag waving with cityscape on background in Tehran, Iran. (Sir Francis Canker Photography/Getty Images) Geopolitics Microsoft: Iranian espionage campaign targeted satellite and defense sectors
Tehran’s latest hacking activity involves easy-to-detect techniques to gain access and then pivoting to stealthier methods.
-
A screenshot of World Wired Labs’s website. The “company” has been selling access to a trojan that is similar to one used by Winnti Group. (Greg Otto/Scoop News Group) Geopolitics Who is World Wired Labs and why are they selling an Android trojan?
BlackBerry Cylance researchers think they’ve found a possible shell company for Chinese hackers known as the Winnti group.
-
A picture of Tehran, Iran. (Getty) Geopolitics Iran-linked hackers use VPN exploits in far-flung spying campaign
A failure to patch has enabled a three-year running hacking campaign.
-
(Getty Images) Government After U.S. kills Iranian general, analysts warn of Tehran’s ability to retaliate in cyberspace
Iran could leverage its considerable hacking capabilities, which it has built up in recent years, to disrupt U.S. organizations.
-
3d rendering ai artificial intelligent robot hand point hand in to the rising graph with virtual mixed augmented reality for predict growing growth in future 2020 for business development to success (Getty Images) Technology The Cyber speaks: What will actually happen in 2020
The only true way to predict computer security is to hear from the machines themselves.
-
(Getty Images) Technology IBM sounds alarm about more data-wiping malware from Iran
The new research is the latest indication of Iran’s disruptive capabilities in cyberspace.
-
(Getty Images) Technology APT33 has shifted targeting to industrial control systems software, Microsoft says
Given that the group has been linked with data-wiping hacks in the past, the new activity has analysts’ full attention.
-
The Thanos ransomware used in the attacks has gained traction on underground forums (Getty Images). Technology APT33 has used botnets to infect targets in the U.S. and Middle East, researchers say
The Iranian hackers also set up their own virtual private network with “exit nodes” that change frequently, according to Trend Micro.
-
(Getty) Geopolitics 10,000 Microsoft customers targeted by nation-state attacks in the last year
Microsoft has tied the attacks — some of which have been successful — with a group linked with Iran (APT 33), with a group from North Korea (APT 38), as well as with two groups linked with Russia (APT 28 and APT 29).